Trending

#GLIBC

Latest posts tagged with #GLIBC on Bluesky

Latest Top
Trending
#MJF Tribute #WBC #Javier Bardem #Marty Supreme #Andrade #Jessie Buckley #Academy Awards #MBJ #Autumn Durald Arkapaw #Wallace #MJF Tribute #WBC #Javier Bardem #Marty Supreme #Andrade #Jessie Buckley #Academy Awards #MBJ #Autumn Durald Arkapaw #Wallace

Posts tagged #GLIBC

@ferramentaslinux.bsky.social
1 month ago
Preview
Glibc Embraces Linux Foundation Infrastructure for Enhanced Security and Scale Blog com notícias sobre, Linux, Android, Segurança , etc

🚀 Major shift for #glibc! The GNU C Library is migrating to the @LinuxFoundation's Core Toolchain Infrastructure (#CTI). Read more: 👉 tinyurl.com/ykvs2vak #GNU #LinuxFoundation

1 0 0 0
Reliable Embedded Systems – Robert Berger e.U.
Reliable Embedded Systems – Robert Berger e.U.
@reliableembsys.bsky.social
1 month ago
Post image

🚨 CVE-2026-0915: Critical leak in glibc's getnetbyaddr exposes stack contents! Patch now! https://ow.ly/RWUL50Y03Lb https://ow.ly/5TFi50Y03Lc #CyberSecurity #glibc #Vulnerability

0 0 0 0
情報の灯台
情報の灯台
@johonotodai.bsky.social
1 month ago
DNS, Cloudflare 1.1.1.1, DNS resolver, public DNS, RFC 1034, RFC 1035, CNAME record, CNAME ordering, glibc, getaddrinfo, Linux, Cisco CBS250, CBS350, reboot loop, DNS_CLIENT-F-SRCADDRFAIL, IETF, Internet-Draft, Paul Mockapetris, Hyrum's Law, Code Orange, Fail Small, DNS障害, DNSリゾルバ, 名前解決, インターネット障害, 仕様書, プロトコル, 技術史, ネットワーク, サーバー, インフラ

DNS, Cloudflare 1.1.1.1, DNS resolver, public DNS, RFC 1034, RFC 1035, CNAME record, CNAME ordering, glibc, getaddrinfo, Linux, Cisco CBS250, CBS350, reboot loop, DNS_CLIENT-F-SRCADDRFAIL, IETF, Internet-Draft, Paul Mockapetris, Hyrum's Law, Code Orange, Fail Small, DNS障害, DNSリゾルバ, 名前解決, インターネット障害, 仕様書, プロトコル, 技術史, ネットワーク, サーバー, インフラ

DNSの曖昧な仕様が40年越しに世界を止めた

2026年1月8日、Cloudflareの1.1.1.1でDNS障害が発生しました。
原因は、1987年に書かれたRFC 1034の「possibly」という一語でした。

40年間、誰も気づかなかった曖昧な仕様が、glibcとCloudflareの解釈の違いで衝突。
Ciscoスイッチは再起動ループに陥りました。

▼ 詳細はこちら
note.com/joho_no_toda...

#DNS #Cloudflare #glibc #RFC
DNS spec ambiguity crashed the net

1 0 0 0
GCC - GNU Toolchain
GCC - GNU Toolchain
@gnutools.bsky.social
2 months ago

GNU Toolchain Office Hours Europe/Americas starting now!

gcc.gnu.org/wiki/OfficeH...

#GNUToolchain #OpenSource #GCC #GDB #GLIBC

1 0 0 0
GCC - GNU Toolchain
GCC - GNU Toolchain
@gnutools.bsky.social
2 months ago

GNU Toolchain Office Hours Asia/Pacific starting soon!

Thursday Jan 15 at 09h00 IST / 11:30 AM CST / 12:30 PM JST/ 2:30 PM AEDT / 10:30 PM EST (14 Jan) / 7:30 PM PST (14 Jan)

gcc.gnu.org/wiki/OfficeH...

#GNUToolchain #OpenSource #GCC #GDB #GLIBC

1 0 0 0
raptor :C_H:
raptor :C_H:
@raptor.infosec.exchange.ap.brid.gy
2 months ago
Preview
[하루한줄] CVE-2025-4802 : GLIBC의 정적 setuid 바이너리에서 발생하는 임의 라이브러리 경로 취약점 - hackyboiz ## URL * https://cyberpress.org/critical-glibc-flaw/ ## Target * 2.27부터 2.38까지의 GNU C Library를 사용하는 환경 ## Explain ### background 일반적으로 리눅스에서 setuid/setgid 권한이 적용된 바이너리를 실행하면 커널은 `execve()` 내부에서 secure execution이라는 특수 모드를 활성화합니다. 이 과정에서 커널은 `bprm->secureexec = 1`을 설정[1]하고 ELF 보조 벡터에 `AT_SECURE = 1` 값을 삽입[2]합니다. > **linux-6.17.9/security/commoncap.c** int cap_bprm_creds_from_file(struct linux_binprm *bprm, const struct file *file) ... /* Check for privilege-elevated exec. */ if (id_changed || !uid_eq(new->euid, old->uid) || !gid_eq(new->egid, old->gid) || (!__is_real(root_uid, new) && (effective || __cap_grew(permitted, ambient, new)))) bprm->secureexec = 1; // [1] ... > **linux-6.17.9/fs/binfmt_elf.c** static int create_elf_tables(struct linux_binprm *bprm, const struct elfhdr *exec, unsigned long interp_load_addr, unsigned long e_entry, unsigned long phdr_addr) ... NEW_AUX_ENT(AT_SECURE, bprm->secureexec); // [2] ... `AT_SECURE`가 `1`이면 glibc는 secure mode로 전환하여 내부적으로 `__libc_enable_secure = 1`을 설정[3]하고 `LD_LIBRARY_PATH`, `LD_PRELOAD`, `LD_AUDIT`과 같은 위험한 환경 변수를 무시[4]하게 됩니다. > **glibc-2.35/elf/dl-support.c** void _dl_aux_init (ElfW(auxv_t) *av) ... case AT_SECURE: seen = -1; __libc_enable_secure = av->a_un.a_val; // [3] __libc_enable_secure_decided = 1; break; ... > **glibc-2.35/elf/rtld.c** static void dl_main (const ElfW(Phdr) *phdr, ElfW(Word) phnum, ElfW(Addr) *user_entry, ElfW(auxv_t) *auxv) ... dl_main_state_init (&state); ... static void dl_main_state_init (struct dl_main_state *state) { audit_list_init (&state->audit_list); state->library_path = NULL; state->library_path_source = NULL; ... static void process_envvars (struct dl_main_state *state) ... case 12: /* The library search path. */ if (!__libc_enable_secure // [4] && memcmp (envline, "LIBRARY_PATH", 12) == 0) { state->library_path = &envline[13]; state->library_path_source = "LD_LIBRARY_PATH"; break; } ... 해당 필터링은 프로세스의 초기화 루틴에서 수행되며 이로 인해 일반 사용자가 setuid 바이너리에 임의의 라이브러리 경로를 전달함으로써 root 권한을 획득하는 경로가 차단됩니다. ### root cause 해당 취약점의 경우 glibc의 `__libc_enable_secure` 값을 이용한 환경 변수 필터링 로직이 동적 로더의 초기화 함수인 `dl_main()` 에서만 적용되어 있었기 때문에 발생하였습니다. 정적 링크된 바이너리는 동적 로더를 사용하지 않기 때문에 `_dl_non_dynamic_init()` 함수를 통해 라이브러리 경로를 설정[5]하는데 해당 함수에서는 `__libc_enable_secure` 값에 따른 환경 변수 필터링이 미흡했습니다. > **glibc-2.35/elf/dl-support.c** void _dl_non_dynamic_init (void) { ... /* Initialize the data structures for the search paths for shared objects. */ _dl_init_paths (getenv ("LD_LIBRARY_PATH"), "LD_LIBRARY_PATH", // [5] /* No glibc-hwcaps selection support in statically linked binaries. */ NULL, NULL); ... 이로 인해 커널이 secure execution 모드를 활성화하더라도 `dlopen()`등의 함수 호출에서 환경 변수 기반의 경로를 그대로 사용하게 되어 공격자가 `LD_LIBRARY_PATH` 환경 변수에 제어 가능한 디렉터리를 설정하면 setuid 바이너리가 공격자의 라이브러리를 로드할 수 있게 됩니다. ### patch 패치 커밋 `5451fa962cd0a90a0e2ec1d8910a559ace02bba0`에서 `__libc_enable_secure` 값을 통해 환경 변수를 필터링[6]한 후 라이브러리 경로를 로드[7]하도록 변경되었습니다. > **glibc-2.39/elf/dl-support.c** void _dl_non_dynamic_init (void) { _dl_main_map.l_origin = _dl_get_origin (); _dl_main_map.l_phdr = GL(dl_phdr); _dl_main_map.l_phnum = GL(dl_phnum); /* Set up the data structures for the system-supplied DSO early, so they can influence _dl_init_paths. */ setup_vdso (NULL, NULL); /* With vDSO setup we can initialize the function pointers. */ setup_vdso_pointers (); if (__libc_enable_secure) // [6] { static const char unsecure_envvars[] = UNSECURE_ENVVARS ; const char *cp = unsecure_envvars; while (cp < unsecure_envvars + sizeof (unsecure_envvars)) { __unsetenv (cp); cp = strchr (cp, '\0') + 1; } } ... /* Initialize the data structures for the search paths for shared objects. */ _dl_init_paths (getenv ("LD_LIBRARY_PATH"), "LD_LIBRARY_PATH", // [7] /* No glibc-hwcaps selection support in statically linked binaries. */ NULL, NULL); ... ## Reference * https://www.man7.org/linux/man-pages/man3/getauxval.3.html * https://ubuntu.com/security/CVE-2025-4802 * https://cyberpress.org/critical-glibc-flaw/ * https://articles.manugarg.com/aboutelfauxiliaryvectors * https://patchwork.yoctoproject.org/project/oe-core/patch/20250611113400.2146584-1-sunilkumar.dora@windriver.com/#28605 - hack & life

Cool bug 🐞

CVE-2025-4802: Arbitrary library path #vulnerability in static setuid binary in #GLIBC

hackyboiz.github.io/2025/12/03/millet/cve-20...

0 1 0 0
wasm
wasm
@wasm.activitypub.awakari.com.ap.brid.gy
2 months ago
Go 考古:Go 官方如何决定支持你的 CPU 和 OS? - Tony Bai 本文永久链接 - https://tonybai.com/2026/01/01/go-archaeology-porting-policy 大家好,我是Tony Bai。 当我们津津乐道于 Go 语言强大的跨平台编译能力——只需一个 GOOS=linux GOARCH=amd64 就能在 Mac 上编译

Go 考古:Go 官方如何决定支持你的 CPU 和 OS? 本文永久链接 – tonybai.com/2026/01/01/go-archaeolog... 大家好,我是Tony Bai。 当我们津津乐道...

#技术志 #AlpineLinux #Architecture #BlockReleases #BrokenPorts #builder #CI #FirstClassPorts #Glibc #Go #GOARCH

Origin | Interest | Match

0 0 0 0
LinuxNews
LinuxNews
@linuxnews.bsky.social
3 months ago
Preview
systemd führt experimentelle Unterstützung für musl libc ein systemd weicht seine bisherige Linie auf und ermöglicht vorerst experimentell die Verwendung der alternativen GNU‑C‑Bibliothek musl libc.

systemd führt experimentelle Unterstützung für musl libc ein linuxnews.de/systemd-fueh... #systemd #glibc #musl #linux #linuxnews

0 0 0 0
N_{Dario Fadda}
N_{Dario Fadda}
@nuke86.rfeed.it
4 months ago
Post image

Linux imballa la memoria con la ceralacca. Glibc 2.43 porta mseal in ogni programma
il blog: insicurezzadigitale.com/linux-imball...

#cybersecurity #glibc #infosec #kernel #linux

1 0 0 0
linux
linux
@linux.activitypub.awakari.com.ap.brid.gy
5 months ago
Preview
Сборка AppImage: Пошаговое руководство с готовыми скриптами В этой статье мы рассмотрим процесс создания AppImage — универсального формата для распространения Linux-приложений. Ниже представлена ссылка на набор скриптов, который автоматизирует сборку AppImage,...

Сборка AppImage: Пошаговое руководство с готовыми скриптами В этой статье мы рассмотрим процесс создания AppImage ...

#AppImage #qt #сборка #портирование #devops #astralinux #glibc #bash-скрипт

Origin | Interest | Match

0 0 0 0
Aaro Koskinen
Aaro Koskinen
@aakoskin.bitwoods.duckdns.org.ap.brid.gy
6 months ago

My #glibc bug report turned out to be pretty successful! Not only glibc got a fix, but also a #GCC bug fix was made; all this happened within a week.

Don't hesitate to report a bug when you see one.

#GNU #Linux #OpenSource #Hobbyist

1 1 0 0
Aaro Koskinen
Aaro Koskinen
@aakoskin.bitwoods.duckdns.org.ap.brid.gy
6 months ago
33367 – [2.42 regression] Build failure on x86_64 with -Os

I upgraded to #glibc 2.42 and filed a bug: https://sourceware.org/bugzilla/show_bug.cgi?id=33367

#GCC #GNU #Linux

1 1 2 0
openSUSE
openSUSE
@opensuse.org
6 months ago
Preview
Tumbleweed Monthly Update - August 2025 Several software packages were updated in openSUSE Tumbleweed during August that brought new features, performance improvements and some important security f...

August’s Tumbleweed updates are great! Kernel 6.16 adds #RaspberryPi 5 RP1 support, #KDE Gear 25.08 improves travel apps & Dolphin, and #glibc 2.42 brings C23 support. Stay secure, stay rolling. news.opensuse.org/2025/09/02/t...

7 2 0 0
linux
linux
@linux.activitypub.awakari.com.ap.brid.gy
7 months ago
Preview
Glibc 2.42 Lands with New Features, CVE Fixes, and Performance Gains | Linux Today GNU C Library 2.42 is out, bringing ISO C23, POSIX.1-2024, faster malloc tcache, and dozens of bug fixes and CVE patches.

Glibc 2.42 Lands with New Features, CVE Fixes, and Performance Gains GNU C Library 2.42 is out, bringing ISO C23, POSIX.1-2024, faster malloc tcache, and dozens of bug fixes and CVE patches. The po...

#Blog #Glibc #2.42 #ISO #C23

Origin | Interest | Match

0 0 0 0
EULE (EU Linux Evolution)
EULE (EU Linux Evolution)
@eulinuxevolutionde.bsky.social
7 months ago
Preview
Glibc 2.42 kommt mit neuen Funktionen, CVE-Fixes und Leistungssteigerungen GNU C Library 2.42 ist erschienen und bringt ISO C23, POSIX.1-2024, schnelleren malloc tcache und Dutzende von Fehlerkorrekturen und CVE-Patches.

Glibc 2.42 kommt mit neuen Funktionen, CVE-Fixes und Leistungssteigerungen
s3nnet.de/glibc-242-ko...

#Linux #LinuxNews #LinuxDE #LinuxNewsDE #LinuxEU #LinuxNewsEU #EULE #EULEde #Glibc

4 1 0 1
Linuxiac
Linuxiac
@linuxiac.bsky.social
7 months ago
Preview
Glibc 2.42 Lands with New Features, CVE Fixes, and Performance Gains GNU C Library 2.42 is out, bringing ISO C23, POSIX.1-2024, faster malloc tcache, and dozens of bug fixes and CVE patches.

GNU C Library 2.42 is out, bringing ISO C23, POSIX.1-2024, faster malloc tcache, and dozens of bug fixes and CVE patches.
linuxiac.com/glibc-2-42-l...

#Linux #GNU #glibc #OpenSource

3 2 0 0
linux
linux
@linux.activitypub.awakari.com.ap.brid.gy
7 months ago
Post image

Glibc 2.42 Lands with New Features, CVE Fixes, and Performance Gains GNU C Library 2.42 is out, bringing ISO C23, POSIX.1-2024, faster malloc tcache, and dozens of bug fixes and CVE patches.

#Software #Linux #& #Open #Source #News #glibc

Origin | Interest | Match

1 1 0 0
Michel Lind :fedora: :debian:
Michel Lind :fedora: :debian:
@michelin.hachyderm.io.ap.brid.gy
9 months ago
Laptop showing author’s commit from exactly one year ago

Laptop showing author’s commit from exactly one year ago

One year to the day after my first #glibc commit is written, I am back at Arjun’s glibc clinic for round two! @devconf_cz

#DevConf_CZ #FOSSConference #FOSSConf #DevConf2025

1 0 0 0
OMO
OMO
@omo.bsky.social
9 months ago
Preview
glibcの脆弱性(Important: CVE-2025-5702, CVE-2025-5745) - SIOS SECURITY BLOG 06/07/2025にglibcの脆弱性(Important: CVE-2025-5702, CVE-2025

SIOSセキュリティブログを更新しました。

glibcの脆弱性(Important: CVE-2025-5702, CVE-2025-5745)

#sios_tech #security #vulnerability #セキュリティ #脆弱性 #glibc

security.sios.jp/vulnerabilit...

0 0 0 0
jbz
jbz
@jbzfn.bsky.social
9 months ago
Preview
glibc vs. musl An overview of the differences between glibc and musl.

#glibc vs. #musl

0 0 0 0
Vitex
Vitex
@vitex.f.cz.ap.brid.gy
9 months ago
Original post on f.cz

apt-listchanges: News
---------------------

#glibc (2.41-7) unstable; urgency=medium

Starting with glibc 2.41, shared libraries requiring an executable stack
cannot be dynamically loaded through the dlopen mechanism from a binary that
does not require an executable stack. This change aims to […]

0 0 0 0
Freexian
Freexian
@freexian.com
9 months ago
Monthly report about Debian Long Term Support, April 2025 Like each month, have a look at the work funded by Freexian’s Debian LTS offering. Debian LTS contributors In April, 22 contributors have been paid to work on Debian LTS, their reports are available: ...

Debian LTS contributors released 46 Debian LTS Advisories about security updates for various packages in April 2025.

These include critical security bug fixes for jetty9, zabbix and glibc and more.

#debian #freexian #debianlts #glibc

0 0 1 0
jbz
jbz
@jbzfn.bsky.social
10 months ago
Preview
musl libc - Functional differences from glibc printf behavior

musl libc - Functional differences from glibc

wiki.musl-libc.org/functional-d...

#musl #glibc #linux #opensource

1 0 0 0
jbz
jbz
@jbzfn.bsky.social
10 months ago
Preview
Steam Will Stop Working on Outdated Linux Systems This August Starting August 15, 2025, Steam will no longer work on Linux systems using glibc older than version 2.31.

⚠️ Steam Will Stop Working on Outdated Linux Systems This August | Linuxiac

linuxiac.com/steam-will-s...

#steam #glibc #linux #opensource

1 0 0 0